Troubleshooting Portal; No Portal Authentication Page Is Pushed For Users; Cannot Log Out Portal Users On The Access Device - HP VSR1000 Security Configuration Manual
Virtual services router
Hide thumbs
Also See for VSR1000:
- Configuration manual (463 pages) ,
- High availability configuration manual (91 pages) ,
- Layer 2 - wan access command reference (50 pages)
Table of Contents
Advertisement
Troubleshooting portal
No portal authentication page is pushed for users
Symptom
When a user is redirected to the portal Web server for authentication, no portal authentication page or
error message is prompted for the user. The login page is blank.
Analysis
The key configured on the portal access device and that configured on the portal authentication server
are inconsistent. As a result, packet verification fails, and the portal authentication server refuses to push
the authentication page.
Solution
Use the display portal server command on the access device to check whether a key is configured for the
portal authentication server.
If no key is configured, configure the right key.
•
•
If a key is configured, use the ip or ipv6 command in the portal authentication server view to correct
the key, or correct the key configured for the access device on the portal authentication server.
Cannot log out portal users on the access device
Symptom
You cannot use the portal delete-user command on the access device to log out a portal user, but the
portal user can log out by clicking the Disconnect button on the portal authentication client.
Analysis
When you execute the portal delete-user command on the access device to log out a user, the access
device sends an unsolicited logout notification message to the portal authentication server. The
destination port number in the logout notification is the listening port number of the portal authentication
server configured on the access device. If this listening port number is not the actual listening port number
configured on the server, the server cannot receive the notification. As a result, the server does not log out
the user.
When a user uses the Disconnect button on the authentication client to log out, the portal authentication
server sends an unsolicited logout request message to the access device. The access device uses the
source port in the logout request as the destination port in the logout ACK message. As a result, the portal
authentication server can definitely receive the logout ACK message and log out the user.
Solution
1.
Use the display portal server command to display the listening port of the portal authentication
server configured on the access device.
2.
Use the portal server command in system view to change the listening port number to the actual
listening port of the portal authentication server.
109
- Quick Links:
- Configuring the Device as an Ssh...
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
